tomcat8 配置https(续)
tomcat8 配置http重定向到https,记录一下
网上找了一些文章,有的说不可以,需要用一些插件。然而google了一下,确实是可以的。
修改server.xml , 默认8080改成80,redirectPort改成443,AJP的redirectPort也修改一下
<Connector port="80" protocol="HTTP/1.1"
connectionTimeout="20000"
redirectPort="443" />
<Connector port="443" protocol="org.apache.coyote.http11.Http11NioProtocol"
maxThreads="150" SSLEnabled="true" scheme="https" secure="true"
keystoreFile="tomcat.keystore"
keystorePass="123456"
clientAuth="false" sslProtocol="TLS" />
<Connector port="8009" protocol="AJP/1.3" redirectPort="443" />
修改conf/web.xml,在welcome-file-list 后面加入以下内容
<security-constraint>
<!-- Authorization setting for SSL -->
<web-resource-collection >
<web-resource-name >SSL</web-resource-name>
<url-pattern>/*</url-pattern>
</web-resource-collection>
<user-data-constraint>
<transport-guarantee>CONFIDENTIAL</transport-guarantee>
</user-data-constraint>
</security-constraint>
参考
https://tomcat.apache.org/tomcat-8.0-doc/config/http.html
https://coolestguidesontheplanet.com/redirecting-http-https-tomcat/